Enabling Automatic Repair of Source Code Vulnerabilities Using Data-Driven Methods

被引:0
|
作者
Grishina, Anastasiia [1 ]
机构
[1] Simula Res Lab, Oslo, Norway
来源
2022 ACM/IEEE 44TH INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING: COMPANION PROCEEDINGS (ICSE-COMPANION 2022) | 2022年
关键词
Automatic Program Repair; Static Analysis; Software Security; Natural Language Processing; Graph-based Machine Learning; ML4Code;
D O I
10.1145/3510454.3517063
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
Users around the world rely on software-intensive systems in their day-to-day activities. These systems regularly contain bugs and security vulnerabilities. To facilitate bug fixing, data-driven models of automatic program repair use pairs of buggy and fixed code to learn transformations that fix errors in code. However, automatic repair of security vulnerabilities remains under-explored. In this work, we propose ways to improve code representations for vulnerability repair from three perspectives: input data type, data-driven models, and downstream tasks. The expected results of this work are improved code representations for automatic program repair and, specifically, fixing security vulnerabilities.
引用
收藏
页码:275 / 277
页数:3
相关论文
共 50 条
  • [31] PREDICTION OF FLOOD IN KARKHEH BASIN USING DATA-DRIVEN METHODS
    Kamali, S.
    Saedi, F.
    Asghari, K.
    ISPRS GEOSPATIAL CONFERENCE 2022, JOINT 6TH SENSORS AND MODELS IN PHOTOGRAMMETRY AND REMOTE SENSING, SMPR/4TH GEOSPATIAL INFORMATION RESEARCH, GIRESEARCH CONFERENCES, VOL. 10-4, 2023, : 349 - 354
  • [32] Global Optimal Automatic Generation Control of a Multimachine Power System Using Hybrid NLMPC and Data-Driven Methods
    Khamees, Ahmed
    Altinkaya, Hueseyin
    APPLIED SCIENCES-BASEL, 2025, 15 (04):
  • [33] AutoQubo: Data-driven automatic QUBO generation
    Moraglio, Alberto
    Georgescu, Serban
    Sadowski, Przemyslaw
    PROCEEDINGS OF THE 2022 GENETIC AND EVOLUTIONARY COMPUTATION CONFERENCE COMPANION, GECCO 2022, 2022, : 2232 - 2239
  • [34] A data-driven finite state machine model for analyzing security vulnerabilities
    Chen, S
    Kalbarczyk, Z
    Xu, J
    Iyer, RK
    2003 INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS, PROCEEDINGS, 2003, : 605 - 614
  • [35] Data-Driven Investigation into Variants of Code Writing Questions
    Butler, Liia
    Challen, Geoffrey
    Xie, Tao
    2020 IEEE 32ND CONFERENCE ON SOFTWARE ENGINEERING EDUCATION AND TRAINING (CSEE&T), 2020, : 75 - 84
  • [36] Data-driven Radiative Magnetohydrodynamics Simulations with the MURaM Code
    Chen, Feng
    Cheung, Mark C. M.
    Rempel, Matthias
    Chintzoglou, Georgios
    ASTROPHYSICAL JOURNAL, 2023, 949 (02):
  • [37] Enabling secure data-driven applications: an approach to personal data management using trusted execution environments
    Carpentier, Robin
    Popa, Iulian Sandu
    Anciaux, Nicolas
    DISTRIBUTED AND PARALLEL DATABASES, 2025, 43 (01)
  • [38] Card Mapper Enabling Data-Driven Reflections on Ideation Cards
    Darzentas, Dimitrios
    Velt, Raphael
    Wetzel, Richard
    Craigon, Peter J.
    Wagner, Hanne G.
    Urquhart, Lachlan D.
    Benford, Steve
    CHI 2019: PROCEEDINGS OF THE 2019 CHI CONFERENCE ON HUMAN FACTORS IN COMPUTING SYSTEMS, 2019,
  • [39] DATA-DRIVEN VOICE SOURCE WAVEFORM MODELLING
    Thomas, Mark R. R.
    Gudnason, Jon
    Naylor, Patrick A.
    2009 IEEE INTERNATIONAL CONFERENCE ON ACOUSTICS, SPEECH, AND SIGNAL PROCESSING, VOLS 1- 8, PROCEEDINGS, 2009, : 3965 - 3968
  • [40] Generation of Automatic Data-Driven Feedback to Students Using Explainable Machine Learning
    Afzaal, Muhammad
    Nouri, Jalal
    Zia, Aayesha
    Papapetrou, Panagiotis
    Fors, Uno
    Wu, Yongchao
    Li, Xiu
    Weegar, Rebecka
    ARTIFICIAL INTELLIGENCE IN EDUCATION (AIED 2021), PT II, 2021, 12749 : 37 - 42
12345